Solved

DHCP server on Windows network

Posted on 2013-05-29
3
488 Views
Last Modified: 2013-05-29
What is the point in authorising a Windows DHCP server. If I have client machines joined to a domain, they will obviously retrieve DHCP addresses from the authorised DHCP server. If someone puts a rogue DHCP server on the network will my client machines get an IP from the rogue machine or how should I stop this. thanks
0
Comment
Question by:Sid_F
  • 2
3 Comments
 
LVL 12

Expert Comment

by:Chris
ID: 39204319
These pages explain DHCP server authorisation pretty well.

http://technet.microsoft.com/en-us/library/dd296633%28v=ws.10%29.aspx

http://technet.microsoft.com/en-us/library/cc737140%28v=ws.10%29.aspx

It basically prevents unwanted Windows DHCP servers from running on your network. Unfortunately this doesn't apply to non-windows DHCP servers so it's usefulness is somewhat limited.
0
 
LVL 6

Author Comment

by:Sid_F
ID: 39204595
ok but if I have a client joined to a domain which has an authorised dhcp server how will the client know to only use that dhcp server.
0
 
LVL 12

Accepted Solution

by:
Chris earned 500 total points
ID: 39204615
The client doesn't know which to use, it just sends out a broadcast request and waits for a reply from whichever DHCP server replies first.

The way it works is that when a Windows DHCP server starts up, it checks if it's authorised. If its not authrorised then it won't serve any clients. This way, in theory, the only DHCP servers that are active will be ones you've authorised in AD.

As i mentioned above though, non-windows DHCP servers don't check for authorisation, so this is only effective at preventing rogue Windows DHCP servers.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I had a question today where the user wanted to know how to delete an SSL Certificate, so I thought that I would quickly add this How to! Article for your reference. WHY WOULD YOU WANT TO DELETE A CERTIFICATE? 1. If an incorrect certificate was …
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question